Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ad/3b0ba6-fc31-4ec6-8161-ad827e3edf6c/1/6HPldmi6Lwgw7MLVx9zikZpDaHg.roa
File: 6HPldmi6Lwgw7MLVx9zikZpDaHg.roa (raw, json)
Hash identifier: fAnlZZl9GAt9fnzSX+d5vDHhHZaHasFW0/5s6q4HasY=
Subject key identifier: E8:73:E5:76:68:BA:2F:08:30:EC:C2:D5:C7:DC:E2:91:9A:43:68:78
Certificate issuer: /CN=2f5cafd5efd2df2c9b309bbd5eed47a6918984b0
Certificate serial: 08B49C3F
Authority key identifier: 2F:5C:AF:D5:EF:D2:DF:2C:9B:30:9B:BD:5E:ED:47:A6:91:89:84:B0
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/L1yv1e_S3yybMJu9Xu1HppGJhLA.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/ad/3b0ba6-fc31-4ec6-8161-ad827e3edf6c/1/6HPldmi6Lwgw7MLVx9zikZpDaHg.roa
Signing time: Tue 26 Apr 2022 15:05:58 +0000
ROA not before: Tue 26 Apr 2022 15:05:58 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 20700
IP address blocks: 194.11.205.0/24 maxlen: 24
194.11.204.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 146054207 (0x8b49c3f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=2f5cafd5efd2df2c9b309bbd5eed47a6918984b0
Validity
Not Before: Apr 26 15:05:58 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=e873e57668ba2f0830ecc2d5c7dce2919a436878
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ca:5e:fc:f0:89:b7:45:d3:34:2b:dc:7f:05:01:
35:ec:cc:d1:f2:1a:4b:16:2f:36:63:db:9e:a2:1f:
8c:84:9f:3e:c6:ba:d8:df:f4:57:db:e1:19:1e:d1:
de:fb:b9:59:85:6b:71:09:90:bc:cd:17:ae:cd:ee:
25:f2:75:a5:73:69:a7:e3:cb:42:b6:da:b3:09:45:
99:b2:54:5b:0c:51:b3:98:be:05:a0:81:82:f8:de:
52:ca:c7:19:e8:e0:5f:1c:f5:ab:a6:65:a1:ea:05:
78:2a:68:91:7c:c0:90:9b:8a:17:6e:98:28:ab:94:
b8:df:e6:f9:93:37:de:f4:b9:77:92:c8:19:00:69:
6e:36:8f:a0:43:50:8d:3e:c9:26:9e:59:bf:7e:94:
b4:e3:ef:e7:0a:6a:da:44:3a:e2:0f:bb:d8:a0:cd:
2c:44:93:78:0f:ca:0c:fe:cb:1c:06:7e:3c:b3:7c:
e4:9f:04:85:d5:e9:e7:fa:61:58:c4:6d:69:d6:d8:
23:5f:1f:51:6d:f8:a1:f4:fd:0d:3d:88:47:97:f3:
58:57:52:ce:04:c1:1b:70:51:5b:9b:db:58:b6:cc:
e1:54:89:57:45:44:2f:f6:d6:3d:c3:a2:56:18:4e:
d3:57:52:6d:76:31:28:25:3f:87:b8:6d:8b:25:be:
3e:db
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
E8:73:E5:76:68:BA:2F:08:30:EC:C2:D5:C7:DC:E2:91:9A:43:68:78
X509v3 Authority Key Identifier:
keyid:2F:5C:AF:D5:EF:D2:DF:2C:9B:30:9B:BD:5E:ED:47:A6:91:89:84:B0
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/L1yv1e_S3yybMJu9Xu1HppGJhLA.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/3b0ba6-fc31-4ec6-8161-ad827e3edf6c/1/6HPldmi6Lwgw7MLVx9zikZpDaHg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/3b0ba6-fc31-4ec6-8161-ad827e3edf6c/1/L1yv1e_S3yybMJu9Xu1HppGJhLA.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
194.11.204.0/23
Signature Algorithm: sha256WithRSAEncryption
37:39:13:8e:5f:6b:b0:57:7b:01:07:5d:ad:50:a1:4d:cc:a6:
d7:97:6a:0c:91:e7:f8:39:b3:42:4c:98:7f:ad:40:13:f9:39:
4e:cd:87:9f:eb:13:cd:58:67:70:d3:c5:77:b9:7e:d1:cc:2e:
f6:12:cc:cb:87:d5:57:83:13:b3:bd:e7:29:ba:d5:52:0d:2d:
c8:89:bb:d9:88:cf:72:ec:b6:2d:b2:8c:a0:69:19:c2:24:b0:
ec:09:21:d9:bd:d3:77:2a:d2:0b:84:e9:5f:b1:03:15:52:a7:
07:4c:68:de:7d:7c:b6:f0:53:7e:ec:a3:0c:a2:a6:07:cf:d2:
d1:b6:32:f5:e3:98:04:86:e1:ab:23:e4:a5:75:11:f2:e6:4b:
65:83:f2:e4:b7:96:73:10:0c:65:76:c5:88:ab:b5:89:90:86:
65:8c:27:97:fe:d4:3d:a5:70:a1:14:76:42:c8:26:0c:7c:ac:
16:f8:15:a2:65:00:de:d8:d1:10:d6:7f:e0:91:54:41:cd:71:
07:75:a7:95:5d:7d:2a:80:ce:19:2f:3e:5c:a6:81:df:cb:ee:
92:07:19:c5:bc:94:65:04:81:91:ac:ef:a4:3a:4d:fb:6e:c3:
d2:f5:b9:2c:b2:56:5d:4a:91:ac:c8:cb:32:51:76:be:11:ad:
2e:67:ac:2f
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECLScPzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygy
ZjVjYWZkNWVmZDJkZjJjOWIzMDliYmQ1ZWVkNDdhNjkxODk4NGIwMB4XDTIyMDQy
NjE1MDU1OFoXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoZTg3M2U1NzY2OGJh
MmYwODMwZWNjMmQ1YzdkY2UyOTE5YTQzNjg3ODCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAMpe/PCJt0XTNCvcfwUBNezM0fIaSxYvNmPbnqIfjISfPsa6
2N/0V9vhGR7R3vu5WYVrcQmQvM0Xrs3uJfJ1pXNpp+PLQrbaswlFmbJUWwxRs5i+
BaCBgvjeUsrHGejgXxz1q6ZloeoFeCpokXzAkJuKF26YKKuUuN/m+ZM33vS5d5LI
GQBpbjaPoENQjT7JJp5Zv36UtOPv5wpq2kQ64g+72KDNLESTeA/KDP7LHAZ+PLN8
5J8EhdXp5/phWMRtadbYI18fUW34ofT9DT2IR5fzWFdSzgTBG3BRW5vbWLbM4VSJ
V0VEL/bWPcOiVhhO01dSbXYxKCU/h7htiyW+PtsCAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBToc+V2aLovCDDswtXH3OKRmkNoeDAfBgNVHSMEGDAWgBQvXK/V79LfLJsw
m71e7UemkYmEsDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L0wxeXYxZV9TM3l5Yk1KdTlYdTFIcHBHSmhMQS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYWQvM2IwYmE2LWZjMzEtNGVjNi04MTYxLWFkODI3ZTNlZGY2Yy8x
LzZIUGxkbWk2THdndzdNTFZ4OXppa1pwRGFIZy5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWQv
M2IwYmE2LWZjMzEtNGVjNi04MTYxLWFkODI3ZTNlZGY2Yy8xL0wxeXYxZV9TM3l5
Yk1KdTlYdTFIcHBHSmhMQS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAcILzDANBgkqhkiG9w0BAQsFAAOC
AQEANzkTjl9rsFd7AQddrVChTcym15dqDJHn+DmzQkyYf61AE/k5Ts2Hn+sTzVhn
cNPFd7l+0cwu9hLMy4fVV4MTs73nKbrVUg0tyIm72YjPcuy2LbKMoGkZwiSw7Akh
2b3TdyrSC4TpX7EDFVKnB0xo3n18tvBTfuyjDKKmB8/S0bYy9eOYBIbhqyPkpXUR
8uZLZYPy5LeWcxAMZXbFiKu1iZCGZYwnl/7UPaVwoRR2QsgmDHysFvgVomUA3tjR
ENZ/4JFUQc1xB3WnlV19KoDOGS8+XKaB38vukgcZxbyUZQSBkazvpDpN+27D0vW5
LLJWXUqRrMjLMlF2vhGtLmesLw==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:49:34 2024 by rpki-client on console-fra.rpki-client.org